# pfctl -sn
nat on rl0 inet from 192.168.100.0/24 to any -> 192.168.4.1
nat on vr0 inet from 192.168.4.0/24 to any -> 192.168.100.15
# pfctl -sr
scrub in all fragment reassemble
pass in all flags S/SA keep state
pass in inet proto icmp all icmp-type echoreq keep state
pass out inet proto icmp all icmp-type echoreq keep state
block drop in on ! lo0 proto tcp from any to any port = 6000

could someone please give me a hint, what ma I doing wrong!

Cheers

Last edited by Carpetsmoker; 20th August 2009 at 08:41 PM.
Reason: Add [code] tags for the sake of readability.

Problem #1: Your rl0 link (192.168.4/24) is non-operational. No bits flowing = no data routed. You must fix this physical problem before you can use OpenBSD as a router:

Code:

rl0: ... status: no carrier

Problem #2 may or may not be a problem. But it certainly is confusing:

Code:

# pfctl -sn
nat on rl0 inet from 192.168.100.0/24 to any -> 192.168.4.1
nat on vr0 inet from 192.168.4.0/24 to any -> 192.168.100.15

I do not understand your network configuration: You are using NAT for two distinct RFC 1918 (private, not-on-the-Internet) subnetworks ... NAT should be entirely unnecessary with that type of internal LAN subnet routing. NAT should only be necessary when you need address translation, such as when putting your large internal network onto the Internet through a small number of IP addresses, or even a single IP address.

Next time, please wrap configuration and other information in [code] tags. It will make your messages much more readable. Thank you.